10 matches found
SUSE CVE-2007-5615
CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
CVE-2007-5615
CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
SLES10: Security update for Websphere Community Edition
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: websphere-asce More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText:...
Fedora Update for jetty FEDORA-2008-6164
Check for the Version of jetty OpenVAS Vulnerability Test Fedora Update for jetty FEDORA-2008-6164 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for jetty FEDORA-2008-6141
Check for the Version of jetty OpenVAS Vulnerability Test Fedora Update for jetty FEDORA-2008-6141 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for jetty FEDORA-2008-6164
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 9 : jetty-5.1.14-1jpp.2.fc9 (2008-6141)
Bug 417411 - CVE-2007-5615: jetty CRLF injection - Bug 417391 - CVE-2007-5613: jetty cross site scripting - Bug 417401 - CVE-2007-5614: jetty session hijacking issue Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...
Fedora 8 : jetty-5.1.14-1jpp.1.fc8 (2008-6164)
Fri Jul 4 2008 Jeff Johnston 5.1.14-1jpp.1 - Security patch - Resolves 417401, 417411, 417391 - Upgrade to 5.1.14 source tarball for Fedora Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
CVE-2007-5615
Jetty (Mortbay Jetty) is affected by CVE-2007-5615: a CRLF injection vulnerability in Jetty before 6.1.6rc0 that could let remote attackers inject arbitrary HTTP headers and perform HTTP response splitting. IBM/OpenVAS/ Fedora references corroborate the vulnerability in Jetty and list related CVE...
Mortbay Jetty vulnerable to HTTP response splitting
Overview Mortbay Jetty is vulnerable to HTTP response splitting, which may allow a remote, unauthenticated attacker to inject various HTTP headers Description Mortbay Jetty is a web server that is written in Java. Jetty fails to properly handle HTTP headers with CRLF sequences, which can allow an...